istio
/
istio.io
mirror of https://github.com/istio/istio.io.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
istio.io/content/docs/setup/kubernetes/install/platform/alicloud/index.md

3.8 KiB
Raw Blame History

title linktitle description weight keywords aliases
Install Istio on the Alibaba Cloud Kubernetes Container Service Alibaba Cloud Instructions to install Istio using the Alibaba Cloud Kubernetes Container Service. 60
kubernetes
alibabacloud
aliyun
/docs/setup/kubernetes/quick-start-alicloud-ack/

Follow this guide to install and configure an Istio mesh in the Alibaba Cloud Kubernetes Container Service using the Application Catalog module.

This guide installs the current release version of Istio and deploys the Bookinfo sample application.

Prerequisites

  • You have an available Alibaba Cloud Kubernetes cluster. Otherwise, create a Kubernetes cluster quickly and easily in the Container Service console.

  • Ensure kubectl works fine for your Kubernetes cluster.

  • You can create a namespace to deploy Istio components. The following example creates the istio-system namespace:

{{< text bash >}} $ kubectl create namespace istio-system {{< /text >}}

{{< boilerplate helm-security-warning >}}

  • You installed a service account for Tiller. To install one if you haven't, run the following command:

{{< text bash >}} $ kubectl create -f @install/kubernetes/helm/helm-service-account.yaml@ {{< /text >}}

  • You installed Tiller on your cluster. To install Tiller with the service account if you haven't, run the following command:

{{< text bash >}} $ helm init --service-account tiller {{< /text >}}

Deploy Istio via the Application Catalog

  • Log on to the Alibaba Cloud Container Service console.
  • Click Application Catalog in the left navigation pane.
  • Select the ack-istio in the right panel.

{{< image link="./app-catalog-istio-1.0.0.png" caption="Istio" >}}

Customize the installation with parameters

The following table explains the default configuration options shipped with the Helm chart:

Parameter Description Default
global.hub Specifies the images hub for Istio registry.cn-hangzhou.aliyuncs.com/aliacs-app-catalog
global.tag Specifies the TAG for most images used by Istio 0.8
global.proxy.image Specifies the proxy image name proxyv2
global.imagePullPolicy Specifies the image pull policy IfNotPresent
global.controlPlaneSecurityEnabled Specifies whether control plane mTLS is enabled false
global.mtls.enabled Specifies whether mTLS is enabled by default between services false
global.mtls.mtlsExcludedServices List of FQDNs to exclude from mTLS -kubernetes.default.svc.cluster.local
global.rbacEnabled Specifies whether to create Istio RBAC rules or not true
global.refreshInterval Specifies the mesh discovery refresh interval 10s
global.arch.amd64 Specifies the scheduling policy for amd64 architectures 2
global.arch.s390x Specifies the scheduling policy for s390x architectures 2
global.arch.ppc64le Specifies the scheduling policy for ppc64le architectures 2

The Parameters tab exposes the per-service options.

{{< tip >}} Before moving on, wait until Istio is fully deployed. Deployment can take several minutes. {{< /tip >}}

Uninstalling

  1. Visit the Release section of the Alibaba Cloud Container Service console.

  2. Select the release where you wish to uninstall Istio.

  3. Click the Delete button to remove all the deployed Istio artifacts.